CVEFeed Newsroom – Latest Cybersecurity Updates

The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.

  • cert.pl
Vulnerabilities in school-management-system software

Vulnerabilities in school-management-system software CVE ID CVE-2026-47324 Publication date 03 June 2026 Vendor ProjectsAndPrograms Product school-management-system Vulnerable versions 6b6fae5 Vulnera ...

Published Date: Jun 03, 2026 (2 days, 15 hours ago)
  • The Hacker News
Unpatched Windows Search URI Vulnerability Lets Attackers Steal NTLMv2 Hashes

Cybersecurity researchers have disclosed details of an unpatched issue that could be exploited to disclose a user's NTLMv2 hash to the attacker. Like in the case of CVE-2026-33829, which impacted the ...

Published Date: Jun 03, 2026 (2 days, 15 hours ago)
  • The Hacker News
New HTTP/2 Bomb Vulnerability Allows Remote DoS on NGINX, Apache, IIS, Envoy & Cloudflare

Cybersecurity researchers have discovered a remote denial-of-service exploit that affects major web servers, including NGINX, Apache HTTPD, Microsoft IIS, Envoy, and Cloudflare Pingora. The vulnerabil ...

Published Date: Jun 03, 2026 (2 days, 17 hours ago)
  • CybersecurityNews
Microsoft 365 Android Apps Account Takeover Vulnerability Impacted Billions of Android Users

A single forgotten development flag left active in production code silently handed Microsoft account tokens to any app on an Android device, exposing billions of users across six major Microsoft 365 a ...

Published Date: Jun 03, 2026 (2 days, 18 hours ago)
  • security.nl
VS meldt misbruik van vier jaar oud beveiligingslek in Linux-kernel

Aanvallers maken actief misbruik van een vier jaar oude kwetsbaarheid in de Linux-kernel of hebben dit gedaan, zo waarschuwt het Amerikaanse cyberagentschap CISA. Het gaat om CVE-2022-0492, waardoor e ...

Published Date: Jun 03, 2026 (2 days, 18 hours ago)
  • CybersecurityNews
Windows Search URI Handler Flaw Leaks NTLMv2 Hashes to Attacker-Controlled Servers

A newly disclosed flaw in the Windows search URI handler can silently leak NTLMv2 hashes to attacker-controlled servers with nothing more than a single link click. This behavior is the same bug class ...

Published Date: Jun 03, 2026 (2 days, 18 hours ago)
  • CybersecurityNews
HTTP/2 Bomb — Remote DoS Exploit Hits nginx, Apache, IIS, Envoy, and Cloudflare Pingora

A newly disclosed remote denial-of-service exploit dubbed “HTTP/2 Bomb” targets the default HTTP/2 configurations of the world’s most widely deployed web servers, nginx, Apache httpd, Microsoft IIS, E ...

Published Date: Jun 03, 2026 (2 days, 18 hours ago)
  • The Cyber Express
Google Patches Android Zero-Day CVE-2025-48595 Exploited in Targeted Attacks

Google has released its June 2026 Android security update, addressing 124 vulnerabilities, including one actively exploited zero-day. The zero-day — CVE-2025-48595 — is an integer overflow vulnerabili ...

Published Date: Jun 03, 2026 (2 days, 19 hours ago)
  • The Hacker News
Google June 2026 Android Update Patches 124 Flaws, One Actively Exploited

Google on Monday released patches for 124 security vulnerabilities impacting its Android operating system for the month of June 2026, including one high-severity flaw in the Framework component that h ...

Published Date: Jun 02, 2026 (3 days, 7 hours ago)
  • The Hacker News
Gamaredon Exploits WinRAR to Deliver GammaWorm and GammaSteel Against Ukraine

The Russian hacking group known as Gamaredon has been attributed to the continued exploitation of a WinRAR vulnerability to deliver multiple malware families aimed at data theft and propagation. Per S ...

Published Date: Jun 02, 2026 (3 days, 7 hours ago)

Filters

Filter news that are affecting your technology stack
Showing 10 of 11522 Results